dovecot - Jan 2007 - Dovecot's deliver trouble (...probably bug?)

Hello everybody!

I am a Linux admin trying to move my mail
system based on qmail to the software which is more spam-protected:
exim4 + dovecot-1.0rc15 + pgsql .  I've downloaded and rebuild  dovecot 
from src.rpm (for fc4). During
the testing stage I've discovered two troubles:
  1) the problem with deliver (...I'm not sure it's a really bug). Here 
is relevant part
of my /var/log/messages :
-------
Jan  3 10:40:37 serge deliver(serge at test.net): auth input: serge at test.net
Jan  3 10:40:37 serge deliver(serge at test.net): auth input: 
home=/var/spool/mail/test.net/serge/
Jan  3 10:40:37 serge deliver(serge at test.net): auth input: uid=500
Jan  3 10:40:37 serge deliver(serge at test.net): auth input: gid=12
Jan  3 10:40:37 serge deliver(serge at test.net): setuid(500) failed: 
Operation not permitted
-------
 -- my system is fc4 based Linux.  uid/gid are according to 
/etc/dovecot-sql.conf :
user_query = SELECT maildir AS home, 500 AS uid, 12 AS gid FROM mailbox 
WHERE username = '%n@%d' AND active='1'
I was trying to
chown 500.12 /var/spool/mail -R , chmod u+s      ...etc,  but it does 
not helps.  Please, help. I don't want another MDA, people adviced me 
dovecot as good and well tested solution.
I have already spent about two work days to configure and test it...

  2)  Because of mentioned above problem deliver generates a bounce 
message for exim, and
here is a bug with e-mail in the header.
It was taken "as is" from the queue of Exim -- have a look at 
"Return-path:",
"envelope-from" and "Sender:" Because of these errors exim
can not
deliver the message back
to sender. It freezes it, ...trying again, ...freezes ... etc...
--------------------------------------------------
 1H252L-0004jZ-F3-D
This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:

  serge at test.net
local delivery failed

      ------ This is a copy of the message, including all the headers. 
------

Return-path: <"testuser at test.net"@test.net>
Received: from serge.lc.test.net ([10.0.0.5])
by serge.lc.test.net with esmtpa (Exim 4.62)
(envelope-from <"testuser at test.net"@test.net>)
          id 1H252K-0004jT-U5
for serge at test.net; Wed, 03 Jan 2007 14:16:05 +0200
Message-ID: <459B9E84.9070607 at test.net>
Date: Wed, 03 Jan 2007 14:16:04 +0200
  From: test uset <testuser at test.net>
  User-Agent: Thunderbird 1.5 (X11/20060119)
  MIME-Version: 1.0
  To:  serge at test.net
  Subject: =?KOI8-R?Q?=D4=C5=D3=D4_=D0=D2=CF=C8=CF=D6=C4=C5=CE=C9=D1? 
Content-Type: text/plain; charset=KOI8-R; format=flowed
  Content-Transfer-Encoding: 8bit
  Sender: "testuser at test.net"@test.net

     Test message body.
------------------------------------

 Here is an original message from e-mail client ( just to make sure that 
it was made proper way):
------------------------------------
> From - Wed Jan 03 18:18:54 2007
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00800000
Message-ID: <459BD76D.4090903 at test.net>
Date: Wed, 03 Jan 2007 18:18:53 +0200
From: test uset <testuser at test.net>
User-Agent: Thunderbird 1.5 (X11/20060119)
MIME-Version: 1.0
To:  serge at test.net
Subject: =?KOI8-R?Q?=D4=C5=D3=D4_=D0=D2=CF=C8=CF=D6=C4=C5=CE=C9=D1?Content-Type:
text/plain; charset=KOI8-R; format=flowed
Content-Transfer-Encoding: 8bit

  Test message body.

----------------------------------------------------------

    As for POP3 with dovecot, it seems working OK. Dovecot generates 
mail directories
according to the user data returned by SQL, and creates index files 
proper way - everything
with given uid.gid = 500.12 ...

  If you will need some extra piece of information, or my  configs or 
logs -- please feel
free to ask for it.

    Any kind of help: advices, URLs, patches, etc..,  are welcome.

I badly need to bring up this new system as soon as possible.

   Thank you in advance.

  Best regards,
Serge
www.cis.by

-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20070105/d972a7de/attachment-0002.html>

Serge D wrote:
>   1) the problem with deliver (...I'm not sure it's a really bug).
Here
> is relevant part
> of my /var/log/messages :
> -------
> Jan  3 10:40:37 serge deliver(serge at test.net <mailto:serge at
test.net>):
> auth input: serge at test.net <mailto:serge at test.net>
> Jan  3 10:40:37 serge deliver(serge at test.net <mailto:serge at
test.net>):
> auth input: home=//var/spool/mail/test.net/serge//
> Jan  3 10:40:37 serge deliver(serge at test.net <mailto:serge at
test.net>):
> auth input: uid=500
> Jan  3 10:40:37 serge deliver(serge at test.net <mailto:serge at
test.net>):
> auth input: gid=12
> Jan  3 10:40:37 serge deliver(serge at test.net <mailto:serge at
test.net>):
> setuid(500) failed: Operation not permitted
> -------
Deliver is not being run as root, so it cannot change UID to "serge"
user...

John

-- 
John Peacock
Director of Information Research and Technology
Rowman & Littlefield Publishing Group
4501 Forbes Boulevard
Suite H
Lanham, MD  20706
301-459-3366 x.5010
fax 301-429-5748

On Fri, 05 Jan 2007 17:16:51 +0200
Serge D <serge at cis.by> wrote:
>  Hello everybody!
> 
> I am a Linux admin trying to move my mail
> system based on qmail to the software which is more spam-protected:
> exim4 + dovecot-1.0rc15 + pgsql .  I've downloaded and rebuild  dovecot
> from src.rpm (for fc4). During
> the testing stage I've discovered two troubles:
>   1) the problem with deliver (...I'm not sure it's a really bug).
Here
> is relevant part
> of my /var/log/messages :
> -------
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: serge at
test.net
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: 
> home=/var/spool/mail/test.net/serge/
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: uid=500
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: gid=12
> Jan  3 10:40:37 serge deliver(serge at test.net): setuid(500) failed: 
> Operation not permitted
I'm not a Linux user, but I often see messages like this where
various enhanced security packages cause problems, have you
ruled these out?

Either that or deliver is being run as user with insufficient
rights. You shouldn't have to chmod the mail store, the
delivery program assumes the appropriate credentials. At least
that is how I understand it.

Hope this helps,
Dominic

On 5.1.2007, at 17.16, Serge D wrote:
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input:  
> serge at test.net
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: home=/ 
> var/spool/mail/test.net/serge/
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: uid=500
> Jan  3 10:40:37 serge deliver(serge at test.net): auth input: gid=12
> Jan  3 10:40:37 serge deliver(serge at test.net): setuid(500) failed:  
> Operation not permitted
> -------
>  -- my system is fc4 based Linux.  uid/gid are according to /etc/ 
> dovecot-sql.conf :
> user_query = SELECT maildir AS home, 500 AS uid, 12 AS gid FROM  
> mailbox WHERE username = '%n@%d' AND active='1'
Configure Exim to start deliver with UID 500. I don't use Exim, so I  
don't know how.
>   2)  Because of mentioned above problem deliver generates a bounce  
> message for exim, and
> here is a bug with e-mail in the header.
> It was taken "as is" from the queue of Exim -- have a look at  
> "Return-path:",
> "envelope-from" and "Sender:" Because of these errors
exim can not
> deliver the message back
> to sender. It freezes it, ...trying again, ...freezes ... etc...
..
> Return-path: <"testuser at test.net"@test.net>
Since deliver isn't even started, this is probably also an Exim  
configuration problem.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 186 bytes
Desc: This is a digitally signed message part
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20070105/c52d7b72/attachment.bin>